Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/ea1072-f326-4e51-adf1-ba9b0fa1b7a2/1/QnbajwSHyFCAm0qYcoysIXKycD0.mft
File: QnbajwSHyFCAm0qYcoysIXKycD0.mft (raw, json)
Hash identifier: 2rIBjYmZQqXv95t6s2nVxdLRSi5rHoN3AOMkiviy31s=
Subject key identifier: 25:28:79:76:E4:4B:13:EF:F1:8B:D0:EB:D7:4A:1A:9C:ED:BE:69:1F
Authority key identifier: 42:76:DA:8F:04:87:C8:50:80:9B:4A:98:72:8C:AC:21:72:B2:70:3D
Certificate issuer: /CN=4276da8f0487c850809b4a98728cac2172b2703d
Certificate serial: 0196CEE205A7278CA5BC852CC342381706A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QnbajwSHyFCAm0qYcoysIXKycD0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/ea1072-f326-4e51-adf1-ba9b0fa1b7a2/1/QnbajwSHyFCAm0qYcoysIXKycD0.mft
Manifest number: 153B
Signing time: Wed 14 May 2025 13:00:41 +0000
Manifest this update: Wed 14 May 2025 13:00:41 +0000
Manifest next update: Thu 15 May 2025 13:00:41 +0000
Files and hashes: 1: QnbajwSHyFCAm0qYcoysIXKycD0.crl (hash: K12hwmp7TrLQWV/FyfSChbY6NQokEUl5Cf8FldoLHXc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/ea1072-f326-4e51-adf1-ba9b0fa1b7a2/1/QnbajwSHyFCAm0qYcoysIXKycD0.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/ea1072-f326-4e51-adf1-ba9b0fa1b7a2/1/QnbajwSHyFCAm0qYcoysIXKycD0.mft
rsync://rpki.ripe.net/repository/DEFAULT/QnbajwSHyFCAm0qYcoysIXKycD0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 13:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ce:e2:05:a7:27:8c:a5:bc:85:2c:c3:42:38:17:06:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4276da8f0487c850809b4a98728cac2172b2703d
Validity
Not Before: May 14 13:00:41 2025 GMT
Not After : May 15 13:00:41 2025 GMT
Subject: CN=25287976e44b13eff18bd0ebd74a1a9cedbe691f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:69:cf:6a:b9:92:3f:66:da:32:2e:0f:15:09:
f4:d2:84:39:ff:e0:98:5a:da:72:ee:a0:0e:3a:bd:
96:d6:46:3f:17:25:cf:f7:30:57:5d:f6:3c:c8:31:
55:03:f7:01:48:16:d5:d1:cc:3e:00:30:c6:36:4d:
8d:97:fc:ac:2f:a9:ec:cd:ad:d8:bd:cd:88:97:9d:
12:de:a6:b9:dc:11:10:f8:b7:98:21:79:09:73:29:
48:85:8d:06:6b:b6:31:e2:07:8e:c1:f5:a8:24:a8:
43:28:9c:08:75:f6:c5:ca:5b:6c:48:b5:fa:66:e1:
10:5a:31:29:2a:db:00:37:c6:e1:2e:09:96:4b:e2:
87:d9:89:5d:91:5b:57:59:f5:34:df:ba:f8:95:ca:
0b:77:ba:b2:02:2b:e1:31:b2:a1:aa:c6:5a:e3:95:
1d:2f:3b:ad:57:08:61:53:fa:a9:00:08:d5:b7:ae:
02:08:02:e1:72:7c:c2:56:b0:2f:47:9c:32:88:0f:
6c:f8:14:9d:43:2c:6e:b0:bb:7d:d7:6a:9d:f5:86:
dd:a2:66:01:5c:2f:61:c1:d8:86:81:6f:97:40:52:
85:6a:5a:72:da:37:b6:55:31:3d:2b:2e:0c:8f:c6:
29:b5:3b:8c:93:19:ef:d2:09:fa:ea:08:42:84:bc:
b3:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:28:79:76:E4:4B:13:EF:F1:8B:D0:EB:D7:4A:1A:9C:ED:BE:69:1F
X509v3 Authority Key Identifier:
keyid:42:76:DA:8F:04:87:C8:50:80:9B:4A:98:72:8C:AC:21:72:B2:70:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QnbajwSHyFCAm0qYcoysIXKycD0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ea1072-f326-4e51-adf1-ba9b0fa1b7a2/1/QnbajwSHyFCAm0qYcoysIXKycD0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ea1072-f326-4e51-adf1-ba9b0fa1b7a2/1/QnbajwSHyFCAm0qYcoysIXKycD0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:10:22:b7:e1:31:69:8b:22:9e:3b:5c:68:b2:22:c7:df:03:
ef:12:4b:9d:89:ba:63:2f:32:f1:6e:e7:a3:7d:40:ff:95:89:
0b:0b:e0:27:4c:76:c0:31:ce:a1:25:41:5c:7d:41:35:2a:e7:
0a:51:6a:1e:fa:6d:51:87:ab:b9:07:20:3a:26:e7:f2:23:ed:
83:39:65:ee:3d:c5:89:69:01:38:77:69:0a:77:76:e2:7a:58:
56:0e:1e:a2:12:f5:a0:d7:5c:2d:d7:b4:6c:5d:03:48:99:46:
47:d2:8e:da:a5:8e:b2:71:8f:85:3f:ac:51:2b:a9:12:85:ce:
54:d7:e8:90:b7:dd:28:26:94:bd:52:b6:f6:8d:d4:f5:ec:41:
ae:e9:35:2e:79:4a:97:d8:ae:0a:c2:ff:2b:b7:4b:d2:34:4b:
c0:04:9d:f2:18:bd:3c:f9:34:ee:f3:c5:bf:99:9d:41:65:a8:
09:d5:3d:9e:51:0d:30:a4:94:33:88:f2:82:15:2d:17:7d:01:
fa:c6:e3:55:53:53:0c:e9:db:2c:63:da:b6:fb:73:a7:2e:6b:
be:83:52:11:ad:7e:78:96:0a:12:b7:70:ca:9d:11:b0:08:c2:
db:5a:a1:fb:41:96:a7:4e:a3:58:c2:bc:60:fe:d9:37:4e:30:
be:ad:d6:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 22:13:46 2025 by rpki-client